Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1F6337973828453BB1B1F53CCE929B75CA253084FCF649ECEE2D6834FA4C46E5492598B |
|
CONTENT
ssdeep
|
768:hvOcz+c1Zob+emlUcuXwztG3rCzhArySGCxCAU6O86I7VcOvfGM:Oc1Zob+emlUcuXwztQRmJI7VcOR |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
a5477c1e5a43c35a |
|
VISUAL
aHash
|
00036363070703c3 |
|
VISUAL
dHash
|
d616c6ce2efe9e9e |
|
VISUAL
wHash
|
03076367071fc7c7 |
|
VISUAL
colorHash
|
32000030000 |
|
VISUAL
cropResistant
|
8080808080808080,88806d5e5800c0c0,e0b3cc90bb8c8fb3,8eb08c928a8c8d92,d616c6ce2efe9e9e |
• Threat: Fake Ledger Live website
• Target: Ledger hardware wallet users
• Method: Malicious download links for desktop and mobile apps
• Exfil: Likely steals private keys or wallet data
• Indicators: Domain mismatch, obfuscated JS, recent domain
• Risk: HIGH - Potential for wallet compromise